Responsible Disclosure Program

Overview

Security is a key priority for Thinkful, which is why we created this program. We hope to work with security enthusiasts to build a safe learning environment for our students and mentors. Thinkful is an online school built to help our students advance their careers with one-on-one mentorship, a thriving student community, and a project-driven curriculum. Please email responsible-disclosure@thinkful.com to get in touch.

Target: https://www.thinkful.com

Hall of Fame

Suhas S Gaikwad - 190

Abdulhaqkhokhar - 140

Rafael Pablos - 100

shadow - 40

Ismail Hossain - 40

Nithish M Varghese - 30

Oladigbolu Shuaib - 30

Shubham S Pawar - 30

zhaozijie - 10

CJ Legacion - 10

Platform

Heroku

Python/Flask

AngularJS

React

Out of scope

3rd-party service providers (e.g. Heroku)

3rd-party software (vendor libraries)

blog.thinkful.com (Tumblr)

Social engineering, DOS/DDOS and usability issues

Phishing attacks

Functional limits of JWT tokens

Rewards

High: $50

Medium: $30

Low: $10

Your friend sent you $500

Enter your email to receive $500 off a Thinkful Bootcamp. It'll be automatically applied
to your first payment when you enroll.